Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FD195/FF0884A2E7EB11EC9E3885A6F1222468/2F3ED97A809511EFBD910364762E951A.roa
File: 2F3ED97A809511EFBD910364762E951A.roa (raw, json)
Hash identifier: cc5WIBj9BJ8gB4ulLxTfmE62mJcnDw00O/NWkZX2MpI=
Subject key identifier: 63:EB:83:AF:A1:6C:F8:5B:D1:09:19:CE:93:69:1D:42:63:82:32:22
Certificate issuer: /CN=F36FD195AR/serialNumber=B98243FE720BC78DEA55A8AD750C6D0EBD0215B7
Certificate serial: 0371
Authority key identifier: B9:82:43:FE:72:0B:C7:8D:EA:55:A8:AD:75:0C:6D:0E:BD:02:15:B7
Authority info access: rsync://rpki.afrinic.net/repository/arin/uYJD_nILx43qVaitdQxtDr0CFbc.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FD195/FF0884A2E7EB11EC9E3885A6F1222468/2F3ED97A809511EFBD910364762E951A.roa
Signing time: Wed 02 Oct 2024 08:06:10 +0000
ROA not before: Wed 02 Oct 2024 08:06:00 +0000
ROA not after: Mon 31 Oct 2033 08:06:00 +0000
asID: 329184
IP address blocks: 169.255.58.0/24 maxlen: 24
169.255.59.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FD195/FF0884A2E7EB11EC9E3885A6F1222468/uYJD_nILx43qVaitdQxtDr0CFbc.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FD195/FF0884A2E7EB11EC9E3885A6F1222468/uYJD_nILx43qVaitdQxtDr0CFbc.mft
rsync://rpki.afrinic.net/repository/arin/uYJD_nILx43qVaitdQxtDr0CFbc.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 881 (0x371)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FD195AR/serialNumber=B98243FE720BC78DEA55A8AD750C6D0EBD0215B7
Validity
Not Before: Oct 2 08:06:00 2024 GMT
Not After : Oct 31 08:06:00 2033 GMT
Subject: CN=66fcfef2-2013
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:33:5c:55:ae:53:1e:02:58:59:02:46:66:04:
3c:0b:ab:25:8f:f8:b4:fd:29:97:4c:50:24:90:19:
14:60:12:b2:cd:b7:76:96:e5:dd:b4:70:10:4e:c1:
1a:e3:42:d5:40:29:9e:11:ed:f6:b3:78:83:2a:c6:
08:be:ce:89:45:5b:32:17:21:5e:e4:c4:0b:36:43:
7d:95:3e:5d:f8:02:23:a7:d9:93:61:bb:ff:b3:14:
e7:65:85:6a:10:64:42:9b:06:20:35:7d:7d:cb:b2:
bb:cd:88:f0:0c:fc:49:17:d6:4f:9f:d0:d6:3d:b8:
aa:3c:5e:66:04:35:23:10:37:18:91:03:23:ab:2c:
90:f0:d6:e1:01:d7:93:60:07:3d:59:f2:d8:7a:41:
89:8b:08:d3:49:72:1a:3f:38:79:9d:63:b6:8b:db:
92:b5:c0:80:9d:71:85:25:45:42:de:25:80:bc:93:
5f:10:59:64:c7:9a:d3:09:5b:66:75:f7:9d:1f:98:
22:9d:f4:c7:84:fc:81:e2:de:08:b1:b9:8d:34:78:
77:ac:00:38:6f:6c:9e:63:f7:af:80:73:95:d5:fa:
b1:a7:37:11:38:03:5e:19:0b:f0:86:74:c7:18:de:
41:22:57:fd:ac:84:04:c8:5f:17:bc:5f:e7:0a:06:
01:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:EB:83:AF:A1:6C:F8:5B:D1:09:19:CE:93:69:1D:42:63:82:32:22
X509v3 Authority Key Identifier:
keyid:B9:82:43:FE:72:0B:C7:8D:EA:55:A8:AD:75:0C:6D:0E:BD:02:15:B7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FD195/FF0884A2E7EB11EC9E3885A6F1222468/uYJD_nILx43qVaitdQxtDr0CFbc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/uYJD_nILx43qVaitdQxtDr0CFbc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FD195/FF0884A2E7EB11EC9E3885A6F1222468/2F3ED97A809511EFBD910364762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
169.255.58.0/23
Signature Algorithm: sha256WithRSAEncryption
83:89:e1:ac:6b:e8:fd:77:60:a4:68:cc:c9:52:4c:c9:38:11:
9a:c6:25:2d:ba:f8:9f:8c:4f:ee:4e:51:92:2e:5d:e8:a3:22:
07:47:ca:2b:29:5e:8c:ed:26:db:f3:40:72:df:c7:bc:77:4d:
03:12:fb:8e:5a:9c:b3:ff:04:24:d0:ce:42:62:10:39:de:76:
30:39:6e:1a:16:9f:1c:7b:61:ef:76:77:be:9e:55:f6:af:22:
04:fc:7e:4c:25:52:7a:8a:e1:a0:f3:e9:00:c9:1f:19:d3:4b:
c4:59:d4:73:e5:18:1f:0b:cc:2c:31:0f:6b:db:ee:40:38:5a:
ed:f1:b3:14:3f:21:bc:d3:55:12:9e:37:5f:f8:94:04:e6:b9:
ca:bf:bb:a0:54:f6:d4:df:30:9d:a3:33:33:e7:2f:1c:36:2d:
9d:a2:45:a2:db:5a:dd:b8:9a:3d:dd:52:aa:d9:16:51:ca:75:
85:77:42:81:f0:e5:3a:85:68:1e:a1:aa:71:ac:de:2d:fa:8d:
be:5c:27:5a:c3:da:24:ca:15:d3:9a:eb:55:24:e6:18:aa:95:
da:64:88:e1:b6:99:88:c8:16:5a:00:04:ec:05:41:84:e6:05:
63:2a:70:d4:d3:b1:f3:df:67:8f:46:53:f3:42:49:75:56:9a:
2b:b9:b8:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:53:01 2024 by rpki-client on console-fra.rpki-client.org